CVE-2010-3389

Exp

The (1) SAPDatabase and (2) SAPInstance scripts in OCF Resource Agents (aka resource-agents or cluster-agents) 1.0.3 in Linux-HA place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Published: 2010-10-20 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

NVD Status：Modified，CVE State: published

View at NVD, CVE.org, EUVD

Threat Intelligence & Risk Assessment for CVE-2010-3389

EPSS CVSS Exploit-DB Affected OS Tracker

Conclusion & alert: CVE-2010-3389 is rated Exploit Available (54.5/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.42%). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2010-3389

EDB-ID	Source	Kind	Published	Link
—	nvd_ref	exploit_tag		Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2010-3389

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	0.10%	0.42%	+0.32%
2	2025-03-17	0.04%	0.10%	+0.06%
3	2023-03-07	—	0.04%	—

Full EPSS history (4 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-3389

CVSS metrics for this CVE.

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
6.9	2.0	MEDIUM	`AV:L/AC:M/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	3.4	10.0	[email protected]

Weakness enumeration for CVE-2010-3389

OS Trackers for CVE-2010-3389

vendor	priority	summary	link
`gentoo`	high	CVE-2010-3389: 2 GLSA(s) (201110-18, 201412-09), 26 atom(s) (app-admin/syslog-ng, app-misc/ca-certificates, …); latest impact high.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2010-3389
`redhat`	low	—	https://access.redhat.com/security/cve/CVE-2010-3389
`ubuntu`	low	CVE-2010-3389 low priority: Ubuntu including 1 source packages (cluster-agents), 14 status rows across 14 suites (dapper, hardy, jaunty, karmic, lucid, maverick, natty, oneiric, precise, quantal, raring, saucy, trusty, upstream): ignored 7, DNE 5, not-affected 1, released 1.	https://ubuntu.com/security/CVE-2010-3389

Affected software / configurations for CVE-2010-3389

Vendor	Product	Version	Raw CPE
linux-ha	ocf_resource_agents	1.0.3	cpe:2.3:a:linux-ha:ocf_resource_agents:1.0.3:::::::*

References for CVE-2010-3389

URL	Tags
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598549	Exploit Patch
http://secunia.com/advisories/43372
http://security.gentoo.org/glsa/glsa-201110-18.xml
http://www.redhat.com/support/errata/RHSA-2011-0264.html
http://www.redhat.com/support/errata/RHSA-2011-1000.html
http://www.redhat.com/support/errata/RHSA-2011-1580.html
http://www.vupen.com/english/advisories/2011/0416
https://bugzilla.redhat.com/show_bug.cgi?id=639044

cvelogic Threat Intelligence